We are seeking an experienced Cybersecurity Engineer to join our security team. This role is crucial in securing our digital infrastructure, enhancing cloud security, and ensuring compliance with industry standards. The ideal candidate will have hands-on experience with tools like Terraform, Tenable, and Cloud Security Posture Management (CSPM) solutions, a deep understanding of NIST cybersecurity controls, and the ability to remediate cloud vulnerabilities through configuration updates or codebase modifications. Responsibilities also include answering security questionnaires for key stakeholders and supporting compliance and trust initiatives.
Key Responsibilities
- Cloud Security: Design, implement, and manage security controls across cloud environments to ensure security and mitigate risks.
- Vulnerability Management: Identify, assess, and remediate vulnerabilities using tools like Microsoft Defender for Cloud, Datadog, and Tenable.
- HandsOn Remediation: Address cloud vulnerabilities by updating configurations or code, collaborating with software engineers to align security with development practices.
- Infrastructure as Code (IaC): Develop, secure, and maintain infrastructure using Terraform, enforcing security compliance.
- Compliance & Documentation: Implement NIST (80053, CSF) cybersecurity controls, support compliance efforts, and provide security documentation for stakeholders.
Minimum Requirements
- Experience: 3+ years in cybersecurity engineering with practical remediation experience in cloud environments (AWS, Azure, or GCP).
- Cloud Security Tools: Proficiency with Tenable or similar vulnerability management tools and CSPM solutions.
- IaC Knowledge: Experience with Terraform to maintain secure infrastructure-as-code processes.
- NIST Framework: Strong understanding and hands-on experience implementing NIST 80053 or CSF cybersecurity controls.
- Stakeholder Communication: Experience responding to security questionnaires and providing documentation to clients, partners, or regulatory bodies.
Preferred Requirements
- Compliance Frameworks: Familiarity with ISO 27001 or FedRAMP compliance.
- Automation Skills: Proficiencyin scripting (Python, PowerShell) for security tasks and remediation.
- Certifications: Relevant security certifications like CISSP, CCSP, or AWS Security Specialty.
About Us
LSPediA provides SaaS solutions to the pharmaceutical industry. Manufacturers, wholesale distributors, dispensers, and healthcare providers partner with LSPediA to make, move, track, verify, and protect the drug products in their care for patient safety.
LSPediA is different because our solution potential is limitless. Built with user efficiency, automation, and data security at their core, our solutions are transforming compliance and supply chain efforts. LSPediA’s OneScan™ and Investigator™ technologies enable error-free and keyboard-free capabilities for ASN, EPCIS, VRS, issue tracking, and interoperability.